$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/BEF172F4BD1311EDAB02753EC4F9AE02.roa File: BEF172F4BD1311EDAB02753EC4F9AE02.roa (raw, json) Hash identifier: iNceeXcWd+IpQqeSg0WLOtTc+/9CtvbI3t/g9CgtLpM= Subject key identifier: F6:74:1B:0D:08:7E:CE:AA:22:A5:73:8C:0B:DA:50:E3:88:1C:8D:0B Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Certificate serial: 0343 Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/BEF172F4BD1311EDAB02753EC4F9AE02.roa Signing time: Fri 15 Mar 2024 02:44:56 +0000 ROA not before: Fri 15 Mar 2024 02:44:56 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 11161 IP address blocks: 2400:8a20:130::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Validity Not Before: Mar 15 02:44:56 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f3b628-42d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a5:d9:04:ae:73:f8:34:30:54:8a:e7:ad:f8: 01:5e:fc:81:9c:4b:47:c4:2c:d2:9b:ab:15:01:62: 9e:fa:cf:44:20:7b:59:24:a5:24:59:7b:cb:5b:13: 87:46:f1:34:0e:a7:42:c8:84:b8:e6:32:43:a1:f5: 7e:c8:33:3b:93:23:e7:25:31:37:38:b5:b6:3b:5c: 4b:74:8b:7f:fe:27:d9:aa:dc:80:38:db:6d:66:91: 6e:b0:ed:6f:34:ef:85:96:6f:1f:7f:52:db:cc:17: 2c:0d:8d:ff:37:01:e0:d8:29:8c:d2:72:7d:4e:8a: da:4a:2b:f0:2e:e0:96:ce:17:f4:82:21:eb:82:9f: 1b:84:3c:a0:1b:3f:63:03:8e:83:ee:de:fe:e8:38: 29:20:56:c9:84:4e:f2:2d:40:f7:27:bc:03:80:a1: 20:22:e3:2a:21:90:08:ec:27:36:6a:97:b7:c6:80: c1:8e:b0:59:46:b5:af:b6:24:5e:73:bb:a5:ac:27: 3c:57:dd:93:f7:b9:b0:93:41:6e:f7:2d:69:f9:8a: f2:1f:f8:2a:4c:a2:41:dc:cd:a3:29:0d:1b:32:27: 43:ad:e2:21:91:cb:62:4f:aa:cd:1a:aa:65:f1:78: 90:7b:c8:33:3e:8c:ed:3c:64:96:76:52:ae:8e:54: 72:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:74:1B:0D:08:7E:CE:AA:22:A5:73:8C:0B:DA:50:E3:88:1C:8D:0B X509v3 Authority Key Identifier: keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/BEF172F4BD1311EDAB02753EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8a20:130::/48 Signature Algorithm: sha256WithRSAEncryption 91:44:d0:46:81:60:42:be:c5:62:8c:e7:d5:89:ce:fb:6c:89: 5f:72:60:13:ac:af:07:46:5c:67:8d:19:8a:1d:ca:b3:fa:e8: 9a:bc:67:91:dd:94:bc:17:1f:e9:d1:a9:c2:b2:4e:f8:fb:98: 7b:ad:13:88:aa:96:8b:7a:2c:fa:7f:1d:65:17:17:17:cc:cc: 40:40:8d:c0:3d:1b:0d:e5:b0:aa:11:c5:0d:48:07:ed:a2:aa: 07:ec:03:88:f4:4e:5b:71:49:e3:9d:d6:10:e2:af:09:fe:4d: 89:d2:39:3d:6f:ae:c4:94:b3:14:83:74:8e:3e:65:80:90:fb: f2:be:c7:0b:eb:cc:35:9d:9c:4b:59:29:be:01:1b:d2:74:fd: 56:0e:08:53:31:d4:de:52:d2:23:65:21:25:b7:f2:5d:22:e1: 4b:91:40:30:5b:88:bd:fc:97:e9:0c:6a:6e:e5:07:ef:01:99: 24:1d:58:f9:6c:c7:58:bb:9c:9c:85:25:ec:f0:8b:e9:e9:68: 37:c8:d3:6b:73:25:04:86:1e:15:e6:81:a4:6e:c8:01:3b:9c: 09:cf:88:5a:a0:35:c1:36:3e:e8:5a:ab:24:e5:e8:5d:d8:40: 40:a7:f2:f4:89:e3:0b:47:d2:85:98:98:c6:6e:c7:8f:50:fa: d1:94:a7:89 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE MTg4MDg4RDUwHhcNMjQwMzE1MDI0NDU2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzYjYyOC00MmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6XZBK5z+DQwVIrnrfgBXvyBnEtHxCzSm6sVAWKe+s9EIHtZJKUkWXvLWxOH RvE0DqdCyIS45jJDofV+yDM7kyPnJTE3OLW2O1xLdIt//ifZqtyAONttZpFusO1v NO+Flm8ff1LbzBcsDY3/NwHg2CmM0nJ9ToraSivwLuCWzhf0giHrgp8bhDygGz9j A46D7t7+6DgpIFbJhE7yLUD3J7wDgKEgIuMqIZAI7Cc2ape3xoDBjrBZRrWvtiRe c7ulrCc8V92T97mwk0Fu9y1p+YryH/gqTKJB3M2jKQ0bMidDreIhkctiT6rNGqpl 8XiQe8gzPoztPGSWdlKujlRygQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPZ0Gw0I fs6qIqVzjAvaUOOIHI0LMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvQkVGMTcyRjRC RDEzMTFFREFCMDI3NTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAIogATAwDQYJKoZIhvcNAQELBQADggEBAJFE0EaBYEK+ xWKM59WJzvtsiV9yYBOsrwdGXGeNGYodyrP66Jq8Z5HdlLwXH+nRqcKyTvj7mHut E4iqlot6LPp/HWUXFxfMzEBAjcA9Gw3lsKoRxQ1IB+2iqgfsA4j0TltxSeOd1hDi rwn+TYnSOT1vrsSUsxSDdI4+ZYCQ+/K+xwvrzDWdnEtZKb4BG9J0/VYOCFMx1N5S 0iNlISW38l0i4UuRQDBbiL38l+kMam7lB+8BmSQdWPlsx1i7nJyFJezwi+npaDfI 02tzJQSGHhXmgaRuyAE7nAnPiFqgNcE2PuhaqyTl6F3YQECn8vSJ4wtH0oWYmMZu x49Q+tGUp4k= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org